gcloud alpha compute org-security-policies list-rules

NAME
gcloud alpha compute org-security-policies list-rules - list the rules of a Compute Engine organization security policy
SYNOPSIS
gcloud alpha compute org-security-policies list-rules SECURITY_POLICY [NAME …] [--organization=ORGANIZATION] [--regexp=REGEXP, -r REGEXP] [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] [--sort-by=[FIELD,…]] [--uri] [GCLOUD_WIDE_FLAG]
DESCRIPTION
(ALPHA) gcloud alpha compute org-security-policies list-rules is used to list the rules of an organization security policy.
EXAMPLES
To list the rules of an organization security policy with ID "123456789", run:
gcloud alpha compute org-security-policies list-rules list-rules 123456789

To list all the fields of the rules of an organization security policy with ID "123456789", run:

gcloud alpha compute org-security-policies list-rules list-rules 123456789 --format="table(
  priority,
  action,
  direction,
  match.config.srcIpRanges.list():label=SRC_RANGES,
  match.config.destIpRanges.list():label=DEST_RANGES,
  match.config.layer4Configs.map().org_firewall_rule().list():label=PORT_RANGES,
  targetServiceAccounts.list():label=TARGET_SVC_ACCT,
  targetResources:label=TARGET_RESOURCES,
  ruleTupleCount,
  enableLogging,
  description)"
POSITIONAL ARGUMENTS
SECURITY_POLICY
Short name or ID of the security policy to list rules for.
[NAME …]
(DEPRECATED) If provided, show details for the specified names and/or URIs of resources.

Argument NAME is deprecated. Use --filter="name=( 'NAME' … )" instead.

FLAGS
--organization=ORGANIZATION
Organization which the organization security policy belongs to. Must be set if SECURITY_POLICY is display name.
--regexp=REGEXP, -r REGEXP
(DEPRECATED) Regular expression to filter the names of the results on. Any names that do not match the entire regular expression will be filtered out.

Flag --regexp is deprecated. Use --filter="name~'REGEXP'" instead.

LIST COMMAND FLAGS
--filter=EXPRESSION
Apply a Boolean filter EXPRESSION to each resource item to be listed. If the expression evaluates True, then that item is listed. For more details and examples of filter expressions, run $ gcloud topic filters. This flag interacts with other flags that are applied in this order: --flatten, --sort-by, --filter, --limit.
--limit=LIMIT
Maximum number of resources to list. The default is unlimited. This flag interacts with other flags that are applied in this order: --flatten, --sort-by, --filter, --limit.
--page-size=PAGE_SIZE
Some services group resource list output into pages. This flag specifies the maximum number of resources per page. The default is determined by the service if it supports paging, otherwise it is unlimited (no paging). Paging may be applied before or after --filter and --limit depending on the service.
--sort-by=[FIELD,…]
Comma-separated list of resource field key names to sort by. The default order is ascending. Prefix a field with ``~´´ for descending order on that field. This flag interacts with other flags that are applied in this order: --flatten, --sort-by, --filter, --limit.
--uri
Print a list of resource URIs instead of the default output, and change the command output to a list of URIs. If this flag is used with --format, the formatting is applied on this URI list. To display URIs alongside other keys instead, use the uri() transform.
GCLOUD WIDE FLAGS
These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.

Run $ gcloud help for details.

NOTES
This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early access allowlist. This variant is also available:
gcloud beta compute org-security-policies list-rules